CVE-2014-1761 -- The Alley of Compromise

Oct 29, 2014

The following blog was written while working for CrowdStrike. It deals with the developments and the propagation of exploits surrounding CVE-2014-1761, a code execution vulnerability in Microsoft Word that was also leveraged in targeted attacks. The post shows how the events unfolded and shows which actors used exploits for the vulnerability at which point in time.